Solved

ISA and USB ADSL Modems

Posted on 2006-10-29
3
340 Views
Last Modified: 2013-11-16
Hi everyone,
Some time ago I installed a small business server2003 with ISA 2000 for a client. I configured the USB ADSL modem to connect to the net and set up packet filtering according to Microsofts recomendations. The small business server only had one network card serving the internal network. All the clients on the network, as well as the small business server ran F-secure client security (which also has it's own client firewall). I hadn't experienced any problems with the installation except spam from thier external emails and one virus infestation which wa quickly retified. Although a router would have been preferable for the installation, my question is was the installation I've outlined above wrong?
my thoughts on the ISA server was that it handled the web access and therefore the server was protected behind the firewall.... in this case the sbs and the ISA were on the same server.
Thanks in advance
0
Comment
Question by:Halfhidden
  • 2
3 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 125 total points
ID: 17832081
I was be hard-pressed to say it was 'wrong' to install a system this way but I would certainly not install such a configuration for a commercial organisation that had consulted me to give them 'best-advice'. It is arguably true though that using the USB drivers to make the USB device appear as a network interface does work (and obviously successfully).

With now well over 200 ISA installations behind me, I have never used and have no plans to use USB devices as an interface on an ISA server (either as direct or perimeter) but this is personal preference.

I would take the view that if the site were compromised in any way, would the client have grounds against me in court for not following best-practice? The honest answer in my view would be no, best practice is often in the eye of the installer based on industry documentation and experience; the USB device is sold as a network device and you have used it as such. If a secondary question were 'would you have used that configuration as well?' then the answer would also have been ' no, not in a month of Sundays'.

Regards
Keith
0
 

Author Comment

by:Halfhidden
ID: 17840773
Thanks Keith your answer is greatly appreciated.
Regards,
Steff
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 17840994
:)
0

Featured Post

Gigs: Get Your Project Delivered by an Expert

Select from freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Iptables Centos 6 - Sort Numerically 5 53
Cisco ASA 1 61
Open BDS Pf 3 50
Sql Server Firewall Problems 2 66
If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

775 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question